CN117177238B - Method and system for initiating control instruction by terminal - Google Patents
Method and system for initiating control instruction by terminal Download PDFInfo
- Publication number
- CN117177238B CN117177238B CN202311447033.6A CN202311447033A CN117177238B CN 117177238 B CN117177238 B CN 117177238B CN 202311447033 A CN202311447033 A CN 202311447033A CN 117177238 B CN117177238 B CN 117177238B
- Authority
- CN
- China
- Prior art keywords
- parameter change
- control module
- change control
- terminal
- usim
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 26
- 230000000977 initiatory effect Effects 0.000 title claims description 15
- 230000008859 change Effects 0.000 claims abstract description 126
- 238000012508 change request Methods 0.000 claims description 12
- 238000010295 mobile communication Methods 0.000 claims description 9
- 230000008569 process Effects 0.000 claims description 9
- 238000004806 packaging method and process Methods 0.000 claims description 3
- 230000001360 synchronised effect Effects 0.000 claims description 3
- 238000010586 diagram Methods 0.000 description 5
- 230000007246 mechanism Effects 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000005538 encapsulation Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention provides a method and a system for a terminal to initiate a control instruction, wherein the system comprises a USIM parameter change control module, a parameter change control module and a core network parameter change control module, wherein the USIM parameter change control module is deployed in a safe USIM card and is responsible for generating the parameter change control instruction and matching with the core network parameter change control module to finish network security parameter change; the core network parameter change control module is deployed in the core network main authentication enhancement service and is responsible for receiving the terminal parameter change control instruction and generating new parameters required by the terminal, and the new parameters are matched with the USIM parameter change control module to finish network security parameter change. The invention can carry the parameter change control instruction in the terminal network access attachment request on the premise of not influencing the protocol and flow of the 3GPP standard, inform the network side to adjust the security parameters, and finally the network side cooperatively completes the parameter update, thereby achieving the requirements of improving the important privacy information and the dynamic change instantaneity of key resources of the mobile user and reducing the security risk.
Description
Technical Field
The invention relates to the technical field of mobile communication, in particular to a method and a system for a terminal to initiate a control instruction.
Background
The mobile communication has fully entered into the 5G era, the situation that the key industry develops application services based on the 5G public mobile communication network is more and more popular, and because the key industry has higher requirements on network security protection, the current mainstream mode in the industry has a control plane embedded with enhanced communication authentication and privacy protection mechanisms besides the user plane superimposed with end-to-end encryption for protecting transmitted service information, as shown in fig. 1.
When a user builds the mobile communication high security application system shown in fig. 1, cloud negotiation of network security key parameters, such as IMSI identification (International Mobile Subscriber Identification Number, international mobile subscriber identity) representing the identity of the mobile subscriber, a network access authentication algorithm, etc., is required on the control plane, and related parameters are also changed according to policy requirements. The traditional mode is that the main authentication enhancement service at the network side prepares the security parameters to be changed according to the strategy, then the network side waits for the terminal to initiate the network access authentication request, carries the parameter change control instruction in the network access authentication downlink authentication vector, and the security USIM card (Universal Subscriber Identity Module, global user identification card) deployed at the mobile terminal executes the parameter change.
The method can complete the safety parameter change only when the terminal needs to passively wait for network access, and the terminal cannot complete the safety parameter change all the time in the network or in the service state, so that the real-time performance is poor and the change time is not controlled. Meanwhile, when a user judges that the security risk exists and needs to adjust the security parameters in the process of using the terminal, the user does not have a better technical means and can timely inform the network side, and the risk of insufficient security exists. Therefore, a method for actively initiating a control command by a terminal and completing the security parameter change in real time in cooperation with a network side is urgently needed, and the gap in the current industry security mechanism is filled.
Disclosure of Invention
The invention aims to provide a method and a system for initiating a control instruction by a terminal, so as to realize real-time collaborative completion of security parameter change by the terminal side and a network side and reduce the requirement of security risk.
The invention provides a method for a terminal to initiate a control instruction, which is characterized by comprising the following steps:
s1, when a terminal judges that the security parameters need to be adjusted, the terminal generates a parameter change control instruction through a USIM parameter change control module and resets the security USIM card;
s2, the terminal applies for a user identity from the secure USIM card, and the USIM parameter change control module encrypts and encapsulates the parameter change control instruction into SUCI and feeds the SUCI back to the terminal;
s3, the terminal initiates a network access attachment request, and after receiving the network access attachment request, the core network UDM applies for decrypting and analyzing the SUCI to the main authentication enhancement service;
s4, the core network parameter changing control module decrypts and obtains a terminal SUPI, and judges whether the terminal carries a parameter changing control instruction or not;
s5-1, if the terminal does not carry a parameter change control instruction, executing a main authentication flow of a subsequent standard;
s5-2, if the terminal carries a parameter change control instruction, generating a new parameter according to the parameter change control instruction, packaging the new parameter into an authentication vector, and executing a subsequent main authentication flow;
s6, the authentication vector is transmitted to a secure USIM card through a core network, a base station and a terminal, new parameters are analyzed from the authentication vector by the USIM parameter change control module, network access authentication is restarted based on the new parameters, and cloud parameter synchronous update is completed.
The invention also provides a system for initiating the control instruction by the terminal, which comprises a USIM parameter change control module and a core network parameter change control module;
the USIM parameter change control module is deployed in the security USIM card and is responsible for generating a parameter change control instruction and is matched with the core network parameter change control module to finish network security parameter change;
the core network parameter change control module is deployed in the core network main authentication enhancement service and is responsible for receiving the terminal parameter change control instruction and generating new parameters required by the terminal, and is matched with the USIM parameter change control module to finish network security parameter change.
In summary, due to the adoption of the technical scheme, the beneficial effects of the invention are as follows:
the invention can carry the parameter change control instruction in the terminal network access attachment request on the premise of not influencing the protocol and flow of the 3GPP standard, inform the network side to adjust the security parameters, and finally the network side cooperatively completes the parameter update, thereby achieving the requirements of improving the important privacy information and the dynamic change instantaneity of key resources of the mobile user and reducing the security risk.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the following description will briefly describe the drawings in the embodiments, it being understood that the following drawings only illustrate some embodiments of the present invention and should not be considered as limiting the scope, and that other related drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
Fig. 1 is a schematic diagram of a mobile communication high security application system architecture.
Fig. 2 is a schematic diagram of a system for initiating a control command by a terminal in an embodiment of the present invention.
FIG. 3 is a schematic diagram illustrating the generation of parameter change control commands and the completion of encapsulation according to an embodiment of the present invention.
Fig. 4 is a system schematic diagram of a terminal initiated control instruction in a 5G mobile communication network according to an embodiment of the present invention.
Fig. 5 is a system schematic diagram of a terminal initiating a control command in the satellite internet according to an embodiment of the present invention.
Detailed Description
For the purpose of making the objects, technical solutions and advantages of the embodiments of the present invention more apparent, the technical solutions of the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention, and it is apparent that the described embodiments are some embodiments of the present invention, but not all embodiments of the present invention. The components of the embodiments of the present invention generally described and illustrated in the figures herein may be arranged and designed in a wide variety of different configurations.
Thus, the following detailed description of the embodiments of the invention, as presented in the figures, is not intended to limit the scope of the invention, as claimed, but is merely representative of selected embodiments of the invention. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.
Examples
As shown in fig. 2, the present embodiment proposes a system for initiating a control instruction by a terminal, which includes a USIM parameter change control module and a core network parameter change control module;
the USIM parameter change control module is deployed in the security USIM card and is responsible for generating a parameter change control instruction and is matched with the core network parameter change control module to finish network security parameter change;
the core network parameter change control module is deployed in the core network main authentication enhancement service and is responsible for receiving the terminal parameter change control instruction and generating new parameters required by the terminal, and is matched with the USIM parameter change control module to finish network security parameter change.
As shown in fig. 2, the method for the terminal to initiate the control instruction includes the following steps:
s1, when a terminal judges that the security parameters need to be adjusted, the terminal generates a parameter change control instruction through a USIM parameter change control module and resets the security USIM card;
s2, the terminal applies for a user identity from the secure USIM card, and the USIM parameter change control module encrypts and encapsulates the parameter change control instruction into SUCI (SUbscription Concealed Identifier, user hidden identifier), as shown in FIG. 3, and feeds the SUCI back to the terminal;
s3, the terminal initiates a network access attachment request, and after receiving the network access attachment request, the core network UDM applies for decrypting and analyzing the SUCI to the main authentication enhancement service;
s4, the core network parameter change control module decrypts and acquires a terminal SUPI (SUbscription Permanent Identifier, a user permanent identifier) and judges whether the terminal carries a parameter change control instruction or not;
s5-1, if the terminal does not carry a parameter change control instruction, executing a main authentication flow of a subsequent standard;
s5-2, if the terminal carries a parameter change control instruction, generating a new parameter according to the parameter change control instruction, packaging the new parameter into an authentication vector, and executing a subsequent main authentication flow;
s6, the authentication vector is transmitted to a secure USIM card through a core network, a base station and a terminal, new parameters are analyzed from the authentication vector by the USIM parameter change control module, network access authentication is restarted based on the new parameters, and cloud parameter synchronous update is completed.
Application example 1,5G mobile communication network:
in the 5G mobile communication network, related functional entities include a 5G mobile terminal UE, a secure USIM card, a 5G base station gNB, a 5G core network 5GC, and a master authentication enhancement service; a system for initiating control instructions by a terminal comprises a USIM parameter change control module and a core network parameter change control module;
the USIM parameter change control module is deployed in the safe USIM card and is responsible for generating a user identity change request identifier and matching with the core network parameter change control module to finish user identity change;
the core network parameter change control module is deployed in the core network main authentication enhancement service and is responsible for receiving the terminal user identity change request identifier and generating a new identity identifier required by the terminal, and is matched with the USIM parameter change control module to finish user identity identifier change.
As shown in fig. 4, the method for the terminal to initiate the control instruction includes the following steps:
s1, triggering a user identity changing process by a 5G mobile terminal UE according to a security policy;
s2, restarting the safe USIM card by the USIM parameter change control module through an active command;
s3, the USIM parameter change control module generates SUCI based on the current SUPI, and encapsulates and embeds the user identity change request into the SUCI according to a standard format;
s4, the 5G mobile terminal UE initiates a network access attachment request;
s5, the core network parameter changing control module analyzes a user identity changing request of the terminal from the SUCI, selects a new identity SUPI for the 5G mobile terminal UE, and embeds the new identity SUPI into the authentication vector;
s6, the main authentication enhancement service sends a network access authentication request to the 5G mobile terminal UE;
s7, the security USIM card identifies the identity of the core network, and the USIM parameter change control module acquires a new identity identification SUPI from the authentication vector;
s8, completing a subsequent network access authentication process by the 5G mobile terminal UE and the main authentication enhancement service;
s9, restarting the safe USIM card by the USIM parameter change control module through an active command;
and S10, the 5G mobile terminal UE completes network access authentication based on a new identity identification SUPI.
Application example 2, satellite internet:
in the satellite Internet, related functional entities comprise a satellite mobile terminal UE, a secure USIM card, a satellite, an information viewing station, a ground core network and a main authentication enhancement service; a system for initiating control instructions by a terminal comprises a USIM parameter change control module and a core network parameter change control module;
the USIM parameter change control module is deployed in the safe USIM card and is responsible for generating a user identity change request identifier and matching with the core network parameter change control module to finish user identity change;
the core network parameter change control module is deployed in the core network main authentication enhancement service and is responsible for receiving the terminal user identity change request identifier and generating a new identity identifier required by the terminal, and is matched with the USIM parameter change control module to finish user identity identifier change.
As shown in fig. 5, the method for the terminal to initiate the control instruction includes the following steps:
s1, triggering a user identity changing process by a satellite mobile terminal UE according to a security policy;
s2, restarting the safe USIM card by the USIM parameter change control module through an active command;
s3, the USIM parameter change control module generates SUCI based on the current SUPI, and encapsulates and embeds the user identity change request into the SUCI according to a standard format;
s4, the satellite mobile terminal UE initiates a network access attachment request;
s5, the core network parameter changing control module analyzes an identity changing request of the terminal from the SUCI, selects a new identity SUPI for the satellite mobile terminal UE, and embeds the new identity SUPI into the authentication vector;
s6, the main authentication enhancement service sends a network access authentication request to the satellite mobile terminal UE;
s7, the security USIM card identifies the identity of the core network, and the USIM parameter change control module acquires a new identity identification SUPI from the authentication vector;
s8, completing a subsequent network access authentication process by the satellite mobile terminal UE and the main authentication enhancement service;
s9, restarting the USIM card by the USIM parameter change control module through an active command;
and S10, the satellite mobile terminal UE completes network access authentication based on a new identity identification SUPI.
The above description is only of the preferred embodiments of the present invention and is not intended to limit the present invention, but various modifications and variations can be made to the present invention by those skilled in the art. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present invention should be included in the protection scope of the present invention.
Claims (6)
1. A method for a terminal to initiate a control instruction, comprising the steps of:
s1, when a terminal judges that the security parameters need to be adjusted, the terminal generates a parameter change control instruction through a USIM parameter change control module and resets the security USIM card;
s2, the terminal applies for a user identity from the secure USIM card, and the USIM parameter change control module encrypts and encapsulates the parameter change control instruction into SUCI and feeds the SUCI back to the terminal;
s3, the terminal initiates a network access attachment request, and after receiving the network access attachment request, the core network UDM applies for decrypting and analyzing the SUCI to the main authentication enhancement service;
s4, the core network parameter changing control module decrypts and obtains a terminal SUPI, and judges whether the terminal carries a parameter changing control instruction or not;
s5, if the terminal carries a parameter change control instruction, generating a new parameter according to the parameter change control instruction, packaging the new parameter into an authentication vector, and executing a subsequent main authentication flow;
s6, the authentication vector is transmitted to a secure USIM card through a core network, a base station and a terminal, new parameters are analyzed from the authentication vector by the USIM parameter change control module, network access authentication is restarted based on the new parameters, and cloud parameter synchronous update is completed.
2. A system for initiating control instructions by a terminal, for implementing the method for initiating control instructions by a terminal according to claim 1, characterized in that the system comprises a USIM parameter change control module and a core network parameter change control module;
the USIM parameter change control module is deployed in the security USIM card and is responsible for generating a parameter change control instruction and is matched with the core network parameter change control module to finish network security parameter change;
the core network parameter change control module is deployed in the core network main authentication enhancement service and is responsible for receiving the terminal parameter change control instruction and generating new parameters required by the terminal, and is matched with the USIM parameter change control module to finish network security parameter change.
3. A method for a terminal to initiate a control instruction, applied to a 5G mobile communication network, comprising the steps of:
s1, triggering a user identity changing process by a 5G mobile terminal UE according to a security policy;
s2, restarting the safe USIM card by the USIM parameter change control module through an active command;
s3, the USIM parameter change control module generates SUCI based on the current SUPI, and encapsulates and embeds the user identity change request into the SUCI according to a standard format;
s4, the 5G mobile terminal UE initiates a network access attachment request;
s5, the core network parameter changing control module analyzes a user identity changing request of the terminal from the SUCI, selects a new identity SUPI for the 5G mobile terminal UE, and embeds the new identity SUPI into the authentication vector;
s6, the main authentication enhancement service sends a network access authentication request to the 5G mobile terminal UE;
s7, the security USIM card identifies the identity of the core network, and the USIM parameter change control module acquires a new identity identification SUPI from the authentication vector;
s8, completing a subsequent network access authentication process by the 5G mobile terminal UE and the main authentication enhancement service;
s9, restarting the safe USIM card by the USIM parameter change control module through an active command;
and S10, the 5G mobile terminal UE completes network access authentication based on a new identity identification SUPI.
4. A system for a terminal to initiate a control instruction, for implementing the method for a terminal to initiate a control instruction according to claim 3, wherein the system includes a USIM parameter change control module and a core network parameter change control module;
the USIM parameter change control module is deployed in the safe USIM card and is responsible for generating a user identity change request identifier and matching with the core network parameter change control module to finish user identity change;
the core network parameter change control module is deployed in the core network main authentication enhancement service and is responsible for receiving the terminal user identity change request identifier and generating a new identity identifier required by the terminal, and is matched with the USIM parameter change control module to finish user identity identifier change.
5. The method for initiating the control instruction by the terminal is applied to the satellite Internet and is characterized by comprising the following steps:
s1, triggering a user identity changing process by a satellite mobile terminal UE according to a security policy;
s2, restarting the safe USIM card by the USIM parameter change control module through an active command;
s3, the USIM parameter change control module generates SUCI based on the current SUPI, and encapsulates and embeds the user identity change request into the SUCI according to a standard format;
s4, the satellite mobile terminal UE initiates a network access attachment request;
s5, the core network parameter changing control module analyzes an identity changing request of the terminal from the SUCI, selects a new identity SUPI for the satellite mobile terminal UE, and embeds the new identity SUPI into the authentication vector;
s6, the main authentication enhancement service sends a network access authentication request to the satellite mobile terminal UE;
s7, the security USIM card identifies the identity of the core network, and the USIM parameter change control module acquires a new identity identification SUPI from the authentication vector;
s8, completing a subsequent network access authentication process by the satellite mobile terminal UE and the main authentication enhancement service;
s9, restarting the USIM card by the USIM parameter change control module through an active command;
and S10, the satellite mobile terminal UE completes network access authentication based on a new identity identification SUPI.
6. A system for initiating control instructions by a terminal, for implementing the method for initiating control instructions by a terminal according to claim 5, characterized in that the system comprises a USIM parameter change control module and a core network parameter change control module;
the USIM parameter change control module is deployed in the safe USIM card and is responsible for generating a user identity change request identifier and matching with the core network parameter change control module to finish user identity change;
the core network parameter change control module is deployed in the core network main authentication enhancement service and is responsible for receiving the terminal user identity change request identifier and generating a new identity identifier required by the terminal, and is matched with the USIM parameter change control module to finish user identity identifier change.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202311447033.6A CN117177238B (en) | 2023-11-02 | 2023-11-02 | Method and system for initiating control instruction by terminal |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202311447033.6A CN117177238B (en) | 2023-11-02 | 2023-11-02 | Method and system for initiating control instruction by terminal |
Publications (2)
Publication Number | Publication Date |
---|---|
CN117177238A CN117177238A (en) | 2023-12-05 |
CN117177238B true CN117177238B (en) | 2024-01-23 |
Family
ID=88947249
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202311447033.6A Active CN117177238B (en) | 2023-11-02 | 2023-11-02 | Method and system for initiating control instruction by terminal |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN117177238B (en) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN118102287B (en) * | 2023-12-27 | 2024-09-24 | 中国电子科技集团公司第三十研究所 | Mobile communication network and satellite internet anti-positioning system and method |
Citations (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108848502A (en) * | 2018-05-18 | 2018-11-20 | 兴唐通信科技有限公司 | A method of SUPI is protected using 5G-AKA |
CN108901018A (en) * | 2018-07-27 | 2018-11-27 | 中国电子科技集团公司第三十研究所 | A kind of mobile communication system user identity hiding method that terminal is initiated |
CN109842877A (en) * | 2019-04-09 | 2019-06-04 | 中国电子科技集团公司第三十研究所 | A method of realizing that IMSI changes function in SIM card |
CN110944325A (en) * | 2019-11-28 | 2020-03-31 | 楚天龙股份有限公司 | Method and device for realizing SUPI conversion, identification card and storage medium |
CN112866988A (en) * | 2019-11-13 | 2021-05-28 | 中国电信股份有限公司 | Privacy protection method and device for terminal and terminal |
CN113840276A (en) * | 2021-09-18 | 2021-12-24 | 中国联合网络通信集团有限公司 | 5G identifier hiding compatible configuration method, user identification module and terminal |
CN114173327A (en) * | 2021-12-06 | 2022-03-11 | 中国电信股份有限公司 | Authentication method and terminal based on 5G industry private network |
CN114189864A (en) * | 2022-02-16 | 2022-03-15 | 中国电子科技集团公司第三十研究所 | Non-cellular access device and access method for mobile communication system |
WO2023143806A1 (en) * | 2022-01-26 | 2023-08-03 | Telefonaktiebolaget Lm Ericsson (Publ) | Routing indicator update via ue parameters update (upu) procedure |
-
2023
- 2023-11-02 CN CN202311447033.6A patent/CN117177238B/en active Active
Patent Citations (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108848502A (en) * | 2018-05-18 | 2018-11-20 | 兴唐通信科技有限公司 | A method of SUPI is protected using 5G-AKA |
CN108901018A (en) * | 2018-07-27 | 2018-11-27 | 中国电子科技集团公司第三十研究所 | A kind of mobile communication system user identity hiding method that terminal is initiated |
CN109842877A (en) * | 2019-04-09 | 2019-06-04 | 中国电子科技集团公司第三十研究所 | A method of realizing that IMSI changes function in SIM card |
CN112866988A (en) * | 2019-11-13 | 2021-05-28 | 中国电信股份有限公司 | Privacy protection method and device for terminal and terminal |
CN110944325A (en) * | 2019-11-28 | 2020-03-31 | 楚天龙股份有限公司 | Method and device for realizing SUPI conversion, identification card and storage medium |
CN113840276A (en) * | 2021-09-18 | 2021-12-24 | 中国联合网络通信集团有限公司 | 5G identifier hiding compatible configuration method, user identification module and terminal |
CN114173327A (en) * | 2021-12-06 | 2022-03-11 | 中国电信股份有限公司 | Authentication method and terminal based on 5G industry private network |
WO2023143806A1 (en) * | 2022-01-26 | 2023-08-03 | Telefonaktiebolaget Lm Ericsson (Publ) | Routing indicator update via ue parameters update (upu) procedure |
CN114189864A (en) * | 2022-02-16 | 2022-03-15 | 中国电子科技集团公司第三十研究所 | Non-cellular access device and access method for mobile communication system |
Non-Patent Citations (3)
Title |
---|
5G安全技术研究;赵文;罗敏;田永春;康令州;;通信技术(第08期);全文 * |
Apple.C1-207176 "Addition of missing requirements for storing KAUSF, KSEAF, SOR counter and UE parameter update counter".3GPP tsg_ct\wg1_mm-cc-sm_ex-cn1.2020,(第tsgc1_127e期),全文. * |
基于5G用户卡的5G接入认证分析及试验;蔡秋艳;黄健文;杨光;李俊磊;闫占林;黄健;;移动通信(第05期);全文 * |
Also Published As
Publication number | Publication date |
---|---|
CN117177238A (en) | 2023-12-05 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN117177238B (en) | Method and system for initiating control instruction by terminal | |
US11510059B2 (en) | Data security processing method and apparatus | |
US20200119909A1 (en) | Discovery Method and Apparatus Based on Service-Based Architecture | |
EP2421292B1 (en) | Method and device for establishing security mechanism of air interface link | |
US20190028268A1 (en) | Method, apparatus, and system for establishing security context | |
CN111669276A (en) | Network verification method, device and system | |
US9215221B2 (en) | Method for implementing local routing of traffic, base station and system | |
US10880744B2 (en) | Security negotiation method, security function entity, core network element, and user equipment | |
CN107370751B (en) | Method for updating session key in intelligent equipment communication | |
US20230105597A1 (en) | Re-authentication key generation | |
AU2021319660B2 (en) | Method, system and apparatus for determining user plane security algorithm | |
WO2021244509A1 (en) | Data transmission method and system, electronic device, and computer readable storage medium | |
KR20230029811A (en) | SNPN access using credentials owned by an entity separate from SNPN and F1 interface support for this | |
US20230337002A1 (en) | Security context generation method and apparatus, and computer-readable storage medium | |
US20230300772A1 (en) | Target information acquisition method and terminal device | |
US12003549B2 (en) | Method and terminal for processing security policy for V2X | |
CN112838925A (en) | Data transmission method, device and system, electronic equipment and storage medium | |
CN113747547A (en) | Service acquisition method, device, communication equipment and readable storage medium | |
CN111654861B (en) | Authentication method, authentication device, authentication equipment and computer readable storage medium | |
CN108243631A (en) | A kind of method and apparatus for accessing network | |
US20230090543A1 (en) | User Plane Security Enforcement Information Determining Method, Apparatus, and System | |
EP3316608B1 (en) | A communication network and a method for establishing non-access stratum connections in a communication network | |
CN114040398A (en) | Method, system, network device and storage medium for providing service quality assurance | |
US20230239689A1 (en) | Key derivation method, apparatus, and system | |
EP4460058A1 (en) | Authentication and/or key management method, first device, terminal and communication device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |